A reminder that VS Code has an enterprise-unfriendly remote access backdoor in it. https://code.visualstudio.com/docs/remote/tunnels
Do you trust that this doesn't give Microsoft access to the inside of your firewall and company-proprietary source code and other secrets?
Block all traffic to global.rel.tunnels.api.visualstudio.com.